$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ef99f39-5c5c-4bb6-9e15-9baa9a993e2c.roa File: 0ef99f39-5c5c-4bb6-9e15-9baa9a993e2c.roa (raw, json) Hash identifier: HresCJCUIQKSP57j3yBISk6mRqfOTiKQHYO1UoRruG4= Subject key identifier: 1D:AF:F4:18:8D:1C:06:13:82:01:75:61:33:E2:27:27:7D:40:14:4C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16E1D46F188C1EBD8F727E5311DE149CB12F156F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ef99f39-5c5c-4bb6-9e15-9baa9a993e2c.roa Signing time: Wed 13 Aug 2025 00:50:45 +0000 ROA not before: Wed 13 Aug 2025 00:50:45 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:e1:d4:6f:18:8c:1e:bd:8f:72:7e:53:11:de:14:9c:b1:2f:15:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:50:45 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=91d065689f70dd36a40fd06f4ee9c92dca5c76bf77cdcd61b4f24df1e13afb36, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e7:35:83:3c:97:f0:27:60:71:40:fa:44:a6: 35:41:fb:65:a1:38:77:2f:19:92:c4:72:fe:7b:24: ee:b7:ce:40:e2:53:be:1b:f9:0d:1d:8b:94:a0:05: 80:0a:98:99:72:95:51:01:cf:fb:4f:3a:aa:90:f4: 40:53:e6:6f:48:7e:0d:17:5a:88:02:18:22:f1:f2: 0d:1f:d8:fd:5e:07:af:44:03:4f:56:45:27:6f:27: 72:8e:a1:2a:2d:4d:81:3c:e6:2a:f0:58:e6:93:eb: 5f:4c:8d:ae:a5:1e:b3:62:b1:38:38:5a:b4:13:f0: 6b:35:ee:5f:74:62:de:ba:75:e8:d6:95:24:0a:c0: d1:30:c6:87:8e:3a:22:f8:56:5d:f8:b1:38:97:e2: 3b:0c:b3:d5:14:76:1f:fa:36:86:b1:15:2b:a9:4c: f0:54:be:32:f8:b1:08:15:2a:e7:16:ee:0f:fd:f1: 44:fa:69:da:56:ab:2d:e6:51:17:20:38:bf:a9:a4: 58:69:ec:5c:bd:01:70:18:70:98:e8:b2:db:0b:17: ea:9d:c4:3d:8b:d5:05:8f:20:68:ad:6f:4e:e1:ca: 4f:69:78:ef:17:49:bf:1e:9f:df:af:09:3a:17:39: 0c:3e:7c:cf:c9:35:7b:e9:e7:97:e7:59:56:e0:8f: ef:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:AF:F4:18:8D:1C:06:13:82:01:75:61:33:E2:27:27:7D:40:14:4C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ef99f39-5c5c-4bb6-9e15-9baa9a993e2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.154.0/24 Signature Algorithm: sha256WithRSAEncryption a2:24:92:aa:40:af:7f:81:1a:86:d5:eb:7c:42:cc:a1:db:89: 96:6e:af:cd:3e:25:c8:6c:0e:2d:77:df:ad:ea:98:3c:16:a3: 82:90:6f:82:fa:6a:3c:ec:1d:12:d5:23:a3:ee:6f:a8:b6:84: ae:98:f6:ac:79:30:f0:38:71:a5:82:df:d8:6e:5d:ea:50:9e: 7f:c8:c6:c2:21:e4:2c:6d:5e:9b:10:49:66:41:ac:dc:99:47: 45:3d:6b:74:26:5d:dc:21:bb:ba:be:dd:9c:8d:0f:32:8a:a3: ca:fb:e9:a0:d2:b6:11:e5:ad:c9:ee:76:8d:40:eb:10:c7:30: 13:88:14:5b:87:3b:f4:a4:76:05:59:71:f7:8a:f4:bc:9a:55: 3d:95:90:1d:5d:e6:4f:05:d1:b5:8f:32:7f:5d:c5:c5:c3:14: 5c:31:8a:a9:7a:04:54:cb:04:20:dc:43:70:04:ae:b5:99:b8: 31:dc:b6:b9:76:98:96:a2:ea:9d:1d:6c:a7:04:9f:30:6c:41: 63:f4:71:21:49:3a:4d:1e:6c:1f:9e:79:e9:b6:eb:24:6e:f8: 69:08:34:72:4a:40:3a:88:09:1c:21:08:1b:4b:26:83:32:49: 1a:f5:2a:58:60:69:10:27:01:2b:ee:12:3a:02:68:d1:52:e7: 4e:58:60:ad -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFuHUbxiMHr2Pcn5TEd4UnLEvFW8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA1MDQ1WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MWQwNjU2ODlmNzBkZDM2YTQwZmQwNmY0ZWU5YzkyZGNh NWM3NmJmNzdjZGNkNjFiNGYyNGRmMWUxM2FmYjM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf5zWDPJfwJ2BxQPpEpjVB+2WhOHcvGZLEcv57JO63zkDi U74b+Q0di5SgBYAKmJlylVEBz/tPOqqQ9EBT5m9Ifg0XWogCGCLx8g0f2P1eB69E A09WRSdvJ3KOoSotTYE85irwWOaT619Mja6lHrNisTg4WrQT8Gs17l90Yt66dejW lSQKwNEwxoeOOiL4Vl34sTiX4jsMs9UUdh/6NoaxFSupTPBUvjL4sQgVKucW7g/9 8UT6adpWqy3mURcgOL+ppFhp7Fy9AXAYcJjostsLF+qdxD2L1QWPIGitb07hyk9p eO8XSb8en9+vCToXOQw+fM/JNXvp55fnWVbgj+9rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHa/0GI0cBhOCAXVhM+InJ31AFEwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlZjk5ZjM5LTVjNWMtNGJiNi05ZTE1LTliYWE5YTk5M2UyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZowDQYJKoZIhvcNAQELBQADggEBAKIkkqpAr3+BGobV63xCzKHbiZZu r80+JchsDi13363qmDwWo4KQb4L6ajzsHRLVI6Pub6i2hK6Y9qx5MPA4caWC39hu XepQnn/IxsIh5CxtXpsQSWZBrNyZR0U9a3QmXdwhu7q+3ZyNDzKKo8r76aDSthHl rcnudo1A6xDHMBOIFFuHO/SkdgVZcfeK9LyaVT2VkB1d5k8F0bWPMn9dxcXDFFwx iql6BFTLBCDcQ3AErrWZuDHctrl2mJai6p0dbKcEnzBsQWP0cSFJOk0ebB+eeem2 6yRu+GkINHJKQDqICRwhCBtLJoMySRr1KlhgaRAnASvuEjoCaNFS505YYK0= -----END CERTIFICATE-----Generated at Wed Aug 20 10:43:27 2025 by rpki-client